For trusty option an own trustmanager has to be provided from now on

Merge remote-tracking branch 'origin/develop'

Author: Ron Radtke

README.md

@@ -908,6 +908,30 @@ ReactNativeBlobUtil.fetch('POST', 'http://example.com/upload', {'Transfer-Encodi
 ### Self-Signed SSL Server
 
 By default, react-native-blob-util does NOT allow connection to unknown certification provider since it's dangerous. To connect a server with self-signed certification, you need to add `trusty` to `config` explicitly. This function is available for version >= `0.5.3`
+In addition since ``0.16.0`` you'll have to define your own trust manager for android.
+````java
+public class MainApplication extends Application implements ReactApplication {
+    ...
+    @Override
+    public void onCreate() {
+       ...
+        ReactNativeBlobUtilUtils.sharedTrustManager = final X509TrustManager x509TrustManager = new X509TrustManager() {
+                @Override
+                public void checkClientTrusted(java.security.cert.X509Certificate[] chain, String authType) throws CertificateException {
+                }
+
+                @Override
+                public void checkServerTrusted(java.security.cert.X509Certificate[] chain, String authType) throws CertificateException {
+                }
+
+                @Override
+                public java.security.cert.X509Certificate[] getAcceptedIssuers() {
+                    return new java.security.cert.X509Certificate[]{};
+                }
+        };
+        ...
+    }
+````
 
 ```js
 ReactNativeBlobUtil.config({

android/src/main/java/com/ReactNativeBlobUtil/ReactNativeBlobUtilUtils.java

@@ -10,7 +10,6 @@
 
 import java.nio.charset.Charset;
 import java.security.MessageDigest;
-import java.security.cert.CertificateException;
 import java.util.Locale;
 
 import javax.net.ssl.HostnameVerifier;
@@ -22,9 +21,10 @@
 
 import okhttp3.OkHttpClient;
 
-
 public class ReactNativeBlobUtilUtils {
 
+    public static X509TrustManager sharedTrustManager;
+
     public static String getMD5(String input) {
         String result = null;
 
@@ -61,22 +61,10 @@ public static void emitWarningEvent(String data) {
 
     public static OkHttpClient.Builder getUnsafeOkHttpClient(OkHttpClient client) {
         try {
-            // Create a trust manager that does not validate certificate chains
-            final X509TrustManager x509TrustManager = new X509TrustManager() {
-                @Override
-                public void checkClientTrusted(java.security.cert.X509Certificate[] chain, String authType) throws CertificateException {
-                }
 
-                @Override
-                public void checkServerTrusted(java.security.cert.X509Certificate[] chain, String authType) throws CertificateException {
-                }
+            if (sharedTrustManager == null) throw new IllegalStateException("Use of own trust manager but none defined");
 
-                @Override
-                public java.security.cert.X509Certificate[] getAcceptedIssuers() {
-                    return new java.security.cert.X509Certificate[]{};
-                }
-            };
-            final TrustManager[] trustAllCerts = new TrustManager[]{x509TrustManager};
+            final TrustManager[] trustAllCerts = new TrustManager[]{sharedTrustManager};
 
             // Install the all-trusting trust manager
             final SSLContext sslContext = SSLContext.getInstance("SSL");
@@ -85,7 +73,7 @@ public java.security.cert.X509Certificate[] getAcceptedIssuers() {
             final SSLSocketFactory sslSocketFactory = sslContext.getSocketFactory();
 
             OkHttpClient.Builder builder = client.newBuilder();
-            builder.sslSocketFactory(sslSocketFactory, x509TrustManager);
+            builder.sslSocketFactory(sslSocketFactory, sharedTrustManager);
             builder.hostnameVerifier(new HostnameVerifier() {
                 @Override
                 public boolean verify(String hostname, SSLSession session) {